-"""NM-Controller accounts are used to provide secure access to the XMLRPC API. They are normal Unix accounts with a shell that tunnels XMLRPC requests to the API server."""
+#
+"""Delegate accounts are used to provide secure access to the XMLRPC API.
+They are normal Unix accounts with a shell that tunnels XMLRPC requests to the API server."""
+
+from pwd import getpwnam
+from grp import getgrnam
-import accounts
import logger
import tools
+import account
-
-class Controller(accounts.Account):
+class Controller(account.Account):
SHELL = '/usr/bin/forward_api_calls' # tunneling shell
- TYPE = 'controller'
+ TYPE = 'controller.Controller'
@staticmethod
def create(name, vref = None):
add_shell(Controller.SHELL)
- logger.log_call('/usr/sbin/useradd', '-p', '*', '-s', Controller.SHELL, name)
+ group = getgrnam("slices")[2]
+ logger.log_call(['/usr/sbin/useradd', '-p', '*', '-g', str(group), '-s', Controller.SHELL, name, ])
@staticmethod
- def destroy(name): logger.log_call('/usr/sbin/userdel', '-r', name)
+ def destroy(name): logger.log_call(['/usr/sbin/userdel', '-r', name, ])
+
+ def is_running(self):
+ logger.verbose("controller: is_running: %s" % self.name)
+ return getpwnam(self.name)[6] == self.SHELL
+
def add_shell(shell):
"""Add <shell> to /etc/shells if it's not already there."""